Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/gpEWG1wX7WC1zjyyEPch9QOoj04.roa
File: gpEWG1wX7WC1zjyyEPch9QOoj04.roa (raw, json)
Hash identifier: ecF9Vtg4PWw54splh3sUw67cVnkgMIm07wQuFb8o/W0=
Subject key identifier: 82:91:16:1B:5C:17:ED:60:B5:CE:3C:B2:10:F7:21:F5:03:A8:8F:4E
Certificate issuer: /CN=ea55dfd13021d5855ff194534933cd7d6cacd6cf
Certificate serial: 018CC6B92BBF004AA725065D9A4288BC026B
Authority key identifier: EA:55:DF:D1:30:21:D5:85:5F:F1:94:53:49:33:CD:7D:6C:AC:D6:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lXf0TAh1YVf8ZRTSTPNfWys1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/gpEWG1wX7WC1zjyyEPch9QOoj04.roa
Signing time: Mon 01 Jan 2024 20:31:13 +0000
ROA not before: Mon 01 Jan 2024 20:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29468
IP address blocks: 185.102.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/6lXf0TAh1YVf8ZRTSTPNfWys1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/6lXf0TAh1YVf8ZRTSTPNfWys1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/6lXf0TAh1YVf8ZRTSTPNfWys1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:2b:bf:00:4a:a7:25:06:5d:9a:42:88:bc:02:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea55dfd13021d5855ff194534933cd7d6cacd6cf
Validity
Not Before: Jan 1 20:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8291161b5c17ed60b5ce3cb210f721f503a88f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d9:7f:a3:4a:48:16:08:1b:be:df:83:de:eb:
c8:21:32:83:36:89:04:fe:55:96:5a:1a:d1:8b:02:
82:c7:18:d9:06:c7:9c:dc:22:e8:35:61:97:2f:68:
e2:57:4b:4a:b6:65:e1:8e:75:b1:84:36:49:07:37:
9b:73:f9:4d:20:b7:22:bf:4f:4b:0c:2f:d3:31:84:
ab:8b:7c:f2:6b:b9:de:ea:64:c1:57:62:7f:06:84:
77:99:20:fe:e4:e8:40:4d:49:39:5e:1c:99:8b:04:
ab:27:fc:1e:3c:11:0f:7a:64:9f:10:81:60:fb:c5:
e9:1a:75:c9:3c:73:73:6a:32:e9:2c:03:d9:e6:65:
e6:ab:a4:52:4b:81:8b:55:ef:df:98:a0:28:5a:c9:
0c:12:dd:b1:cb:e7:7a:a3:55:90:dc:41:30:e7:8c:
31:4a:6f:7d:ff:37:89:55:b4:14:a6:51:05:98:9e:
b5:57:90:47:00:65:ac:6a:db:b1:1f:a1:cb:68:2a:
37:46:8b:76:b0:97:ad:4c:46:3b:3b:17:65:93:d6:
cd:f7:d7:d1:d5:79:b0:41:1e:66:7f:6d:ae:d2:1d:
21:f8:9c:4a:08:6f:fe:f6:ee:85:3d:72:63:bd:d9:
91:96:79:a0:27:a8:df:42:2c:19:f1:2c:b3:53:27:
70:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:91:16:1B:5C:17:ED:60:B5:CE:3C:B2:10:F7:21:F5:03:A8:8F:4E
X509v3 Authority Key Identifier:
keyid:EA:55:DF:D1:30:21:D5:85:5F:F1:94:53:49:33:CD:7D:6C:AC:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lXf0TAh1YVf8ZRTSTPNfWys1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/gpEWG1wX7WC1zjyyEPch9QOoj04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/6lXf0TAh1YVf8ZRTSTPNfWys1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.19.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d7:00:fb:cb:e5:7b:6c:be:c7:97:46:c6:58:1b:9a:88:15:
98:6a:53:a5:fe:7a:13:b2:95:c2:d7:0d:1f:40:90:8b:cb:61:
23:d2:9c:f5:a0:2c:a9:dc:80:9e:b5:a8:0c:22:de:d6:8f:db:
81:f9:67:d3:13:91:53:b1:76:b5:52:85:bc:5e:87:5e:48:e8:
ea:7f:44:39:53:b1:bf:d2:4a:44:a5:f1:1e:a6:d5:5f:de:fb:
bf:32:f3:2a:02:25:9e:cb:86:c9:74:42:2d:9c:8f:9c:6d:dd:
aa:59:12:3a:35:94:55:de:37:23:a1:a2:f4:6a:48:0d:4b:ec:
1f:a0:d6:61:be:2d:97:32:8d:e3:5f:83:cb:09:90:70:79:78:
10:be:e6:9a:e0:0f:b3:ac:8e:7d:42:40:49:d0:dd:4a:c6:d3:
5f:98:aa:e5:5a:3a:5a:00:37:3f:1e:fe:73:a4:76:8c:af:a5:
77:ab:41:cd:d7:49:a2:13:77:54:a2:52:86:9f:15:a1:ce:b1:
4a:02:96:e9:5c:b2:91:08:2b:4e:ef:55:07:82:e8:4d:a2:ae:
6b:39:57:bb:6e:fa:cb:b4:c1:02:09:40:86:b5:10:89:c5:b7:
f2:05:7c:a8:bf:db:50:ca:b1:13:75:b6:6a:83:8c:31:03:db:
e0:ac:e6:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 05:57:11 2024 by rpki-client on console-fra.rpki-client.org